作者： Shen, Yue*;Yu, Fei;Zhang, Ling-Fen;An, Ji-Yao;Zhu, Miao-Liang

期刊： 2005 1ST IEEE/IFIP INTERNATIONAL CONFERENCE IN CENTRAL ASIA ON INTERNET (ICI),2005年2005:150-153

通讯作者： Shen, Yue

作者机构： [Zhang, Ling-Fen; Zhu, Miao-Liang; Shen, Yue; Shen, Y; Yu, Fei; An, Ji-Yao] Hunan Agr Univ, Sch Comp & Informat, Changsha 410128, Peoples R China.

通讯机构： [Shen, Yue] H;Hunan Agr Univ, Sch Comp & Informat, Changsha 410128, Peoples R China.

关键词： intrusion detection;anomalous intrusion detection;system call;finite-state automation machine

摘要： Intrusion detection is an efficient way to protect information system. This paper puts forward a new method of anomalous intrusion detection based on system call. It uses system calls regarded as input, and creates a FSA (finite-state automation machine) for the functions in the program. Then the FSA is used to detect the attack. Moreover, it can find the place of the vulnerability which exists in the program. This can help to alter the source program. Results are shown that this method is effective for some intrusion events.

语种： 英文

作者： Yu, Fei*;Xu, Cheng;Shen, Yue;An, Ji-yao;Zhang, Lin-feng

期刊： Proceedings of the IEEE International Conference on Industrial Technology,2005年2005:63-68

通讯作者： Yu, Fei

作者机构： [Zhang, Lin-feng; Yu, Fei; Shen, Yue; Yu, F; An, Ji-yao; Xu, Cheng] Hunan Agr Univ, Sch Comp & Informat Engn, Changsha 410128, Peoples R China.

通讯机构： [Yu, Fei] H;Hunan Agr Univ, Sch Comp & Informat Engn, Changsha 410128, Peoples R China.

会议名称： IEEE International Conference on Industrial Technology (ICIT)

会议时间： DEC 14-17, 2005

会议地点： Hong Kong, PEOPLES R CHINA

会议主办单位： Hunan Agr Univ, Sch Comp & Informat Engn, Changsha 410128, Peoples R China.

关键词： Finite-state automation machine algorithm;Information security;Intrusion detection;System calls

摘要： With our human beings entering the information age, information security has already become the new problem as the development of human society. This paper first review the application of system call for intrusion detection, and highlight the problems in few commonly cited papers such as Forrest et al and Sekar et al. Then, propose some improvements for Finite-State Automation Machine algorithm, which are technical sound and original. It uses system calls regarded as input, and creates a Finite-State Automation Machine for the functions in the program. Last, the Finite-State Automation Machine is used to detect the attack. Moreover, It can find the place of the vulnerability which exists in the program. This can help to alter the source program. ©2005 IEEE.

语种： 英文

作者： Yu, F*;Huang, H;Xu, C;Dai, XP;Zhu, ML

期刊： Lecture Notes in Computer Science,2005年3759:647-656 ISSN：0302-9743

通讯作者： Yu, F

作者机构： [Yu, F] Hunan Agr Univ, Inst Comp & Informat Engn, Changsha 410128, Hunan, Peoples R China.;Zhejiang Univ, Inst Artificial Intelligence, Hangzhou 310027, Peoples R China.;Hunan Univ, Coll Comp & Commun, Changsha 410082, Peoples R China.

通讯机构： [Yu, F] H;Hunan Agr Univ, Inst Comp & Informat Engn, Changsha 410128, Hunan, Peoples R China.

会议名称： Parallel and Distributed Processing and Applications - ISPA 2005 Workshops, ISPA 2005 International Workshops AEPP, ASTD, BIOS, GCIC, IADS, MASN, SGCA, and WISA, Nanjing, China, November 2-5, 2005, Proceedings

摘要： Along with high development of multimedia information technique, the provider of badness information embeds some badness information to image or directly saves as a image file, avoiding the filter of image, which brings extreme effect of security hidden trouble in society. An information audit system based on image content filtering is provided in this paper. At first, we discuss some basic method filtering physical badness image content, analyze some key technology of filtering image content, and mark as texture character by four eigenvectors: contrast, energy, entropy and correlation. Afterwards, we utilize dynamic programming method to segment image objects, and utilize similarity measurement to denote similarity degree of two character measures. At last, we give an example of identify yellow content, which distill the texture character of image and match it with defined character database. Our system can supervise and control badness information of physical badness image content, and realize automation audit of multimedia information.

语种： 英文

作者： Shen, Y*;Yu, F;An, JY;Zhang, LF

期刊： International Symposium on Communications and Information Technologies 2005, Vols 1 and 2, Proceedings,2005年I:1279-1282

通讯作者： Shen, Y

作者机构： [Zhang, LF; Shen, Y; Yu, F; An, JY] Hunan Agr Univ, Sch Comp & Informat Engn, Changsha 410128, Peoples R China.

通讯机构： [Shen, Y] H;Hunan Agr Univ, Sch Comp & Informat Engn, Changsha 410128, Peoples R China.

会议名称： Communications and Information Technology, 2005. ISCIT 2005. IEEE International Symposium on

关键词： advanced distributed learning;SCORM;adaptive courseware

摘要： Sharable Content Object Reference Model is the most widely accepted publication of Advanced Distributed Learning, In this paper, we are going to using SCORM Sequencing Definition model to construct adaptive courseware. At first introduces the architecture of the whole system;Then introduces the way to build adaptive courseware, Finally gives a conclusion and some work in the future. ©2005 IEEE.

语种： 英文

作者： Yu, F*;Dai, XP;Shen, Y;Huang, H;Zhu, ML

期刊： 2005 INTERNATIONAL CONFERENCE ON SERVICES SYSTEMS AND SERVICES MANAGEMENT, VOLS 1 AND 2, PROCEEDINGS,2005年:835-840

通讯作者： Yu, F

作者机构： [Dai, XP; Zhu, ML; Huang, H; Shen, Y; Yu, F] Hunan Agr Univ, Sch Comp & Informat Engn, Changsha 410128, Peoples R China.

通讯机构： [Yu, F] H;Hunan Agr Univ, Sch Comp & Informat Engn, Changsha 410128, Peoples R China.

关键词： intrusion detection;pattern matching;protocol analysis;network processor

摘要： The problem in network security presently is how to get real-time intrusion detection and alert. In the paper, we design Intrusion Detection System architecture and arithmetic again, meanwhile put forward an improved pattern matching arithmetic based on protocol analysis and theorization machine on Frete. New architecture can use network processor to collect and analyze data in network bottom, which enhance the speed and efficiency in Detection System.

语种： 英文